Detections
Analytics
SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:0836-1)
high Nessus Plugin ID 135166
Language:
Synopsis
The remote SUSE host is missing one or more security updates.Description
The SUSE Linux Enterprise 15-SP1 kernel was updated to receive various security and bugfixes.The following security bugs were fixed :
CVE-2020-8647: Fixed a use-after-free in the vc_do_resize function in drivers/tty/vt/vt.c (bsc#1162929).
CVE-2020-8649: Fixed a use-after-free in the vgacon_invert_region function in drivers/video/console/vgacon.c (bsc#1162931).
CVE-2020-8648: Fixed a use-after-free in the n_tty_receive_buf_common function in drivers/tty/n_tty.c (bsc#1162928).
CVE-2020-9383: Fixed an out-of-bounds read due to improper error condition check of FDC index (bsc#1165111).
CVE-2019-19768: Fixed a use-after-free in the __blk_add_trace function in kernel/trace/blktrace.c (bnc#1159285).
The update package also includes non-security fixes. See advisory for details.
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
Solution
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or 'zypper patch'.Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Workstation Extension 15-SP1:zypper in -t patch SUSE-SLE-Product-WE-15-SP1-2020-836=1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1:zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2020-836=1
SUSE Linux Enterprise Module for Live Patching 15-SP1:zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP1-2020-836=1
SUSE Linux Enterprise Module for Legacy Software 15-SP1:zypper in -t patch SUSE-SLE-Module-Legacy-15-SP1-2020-836=1
SUSE Linux Enterprise Module for Development Tools 15-SP1:zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP1-2020-836=1
SUSE Linux Enterprise Module for Basesystem 15-SP1:zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2020-836=1
SUSE Linux Enterprise High Availability 15-SP1:zypper in -t patch SUSE-SLE-Product-HA-15-SP1-2020-836=1
See Also
https://bugzilla.suse.com/show_bug.cgi?id=1044231
https://bugzilla.suse.com/show_bug.cgi?id=1051510
https://bugzilla.suse.com/show_bug.cgi?id=1051858
https://bugzilla.suse.com/show_bug.cgi?id=1056686
https://bugzilla.suse.com/show_bug.cgi?id=1060463
https://bugzilla.suse.com/show_bug.cgi?id=1065729
https://bugzilla.suse.com/show_bug.cgi?id=1103990
https://bugzilla.suse.com/show_bug.cgi?id=1103992
https://bugzilla.suse.com/show_bug.cgi?id=1104353
https://bugzilla.suse.com/show_bug.cgi?id=1104745
https://bugzilla.suse.com/show_bug.cgi?id=1109837
https://bugzilla.suse.com/show_bug.cgi?id=1111666
https://bugzilla.suse.com/show_bug.cgi?id=1111974
https://bugzilla.suse.com/show_bug.cgi?id=1112178
https://bugzilla.suse.com/show_bug.cgi?id=1112374
https://bugzilla.suse.com/show_bug.cgi?id=1113956
https://bugzilla.suse.com/show_bug.cgi?id=1114279
https://bugzilla.suse.com/show_bug.cgi?id=1114685
https://bugzilla.suse.com/show_bug.cgi?id=1119680
https://bugzilla.suse.com/show_bug.cgi?id=1127611
https://bugzilla.suse.com/show_bug.cgi?id=1133021
https://bugzilla.suse.com/show_bug.cgi?id=1134090
https://bugzilla.suse.com/show_bug.cgi?id=1136157
https://bugzilla.suse.com/show_bug.cgi?id=1141895
https://bugzilla.suse.com/show_bug.cgi?id=1144333
https://bugzilla.suse.com/show_bug.cgi?id=1146539
https://bugzilla.suse.com/show_bug.cgi?id=1156510
https://bugzilla.suse.com/show_bug.cgi?id=1157424
https://bugzilla.suse.com/show_bug.cgi?id=1158187
https://bugzilla.suse.com/show_bug.cgi?id=1159285
https://bugzilla.suse.com/show_bug.cgi?id=1160659
https://bugzilla.suse.com/show_bug.cgi?id=1161561
https://bugzilla.suse.com/show_bug.cgi?id=1161951
https://bugzilla.suse.com/show_bug.cgi?id=1162928
https://bugzilla.suse.com/show_bug.cgi?id=1162929
https://bugzilla.suse.com/show_bug.cgi?id=1162931
https://bugzilla.suse.com/show_bug.cgi?id=1164078
https://bugzilla.suse.com/show_bug.cgi?id=1164507
https://bugzilla.suse.com/show_bug.cgi?id=1165111
https://bugzilla.suse.com/show_bug.cgi?id=1165404
https://bugzilla.suse.com/show_bug.cgi?id=1165488
https://bugzilla.suse.com/show_bug.cgi?id=1165527
https://bugzilla.suse.com/show_bug.cgi?id=1165741
https://bugzilla.suse.com/show_bug.cgi?id=1165813
https://bugzilla.suse.com/show_bug.cgi?id=1165873
https://bugzilla.suse.com/show_bug.cgi?id=1165929
https://bugzilla.suse.com/show_bug.cgi?id=1165950
https://bugzilla.suse.com/show_bug.cgi?id=1165980
https://bugzilla.suse.com/show_bug.cgi?id=1165984
https://bugzilla.suse.com/show_bug.cgi?id=1165985
https://bugzilla.suse.com/show_bug.cgi?id=1166003
https://bugzilla.suse.com/show_bug.cgi?id=1166101
https://bugzilla.suse.com/show_bug.cgi?id=1166102
https://bugzilla.suse.com/show_bug.cgi?id=1166103
https://bugzilla.suse.com/show_bug.cgi?id=1166104
https://bugzilla.suse.com/show_bug.cgi?id=1166632
https://bugzilla.suse.com/show_bug.cgi?id=1166658
https://bugzilla.suse.com/show_bug.cgi?id=1166730
https://bugzilla.suse.com/show_bug.cgi?id=1166731
https://bugzilla.suse.com/show_bug.cgi?id=1166732
https://bugzilla.suse.com/show_bug.cgi?id=1166733
https://bugzilla.suse.com/show_bug.cgi?id=1166734
https://bugzilla.suse.com/show_bug.cgi?id=1166735
https://www.suse.com/security/cve/CVE-2019-19768/
https://www.suse.com/security/cve/CVE-2020-8647/
https://www.suse.com/security/cve/CVE-2020-8648/
https://www.suse.com/security/cve/CVE-2020-8649/
Plugin Details
Severity: High
ID: 135166
File Name: suse_SU-2020-0836-1.nasl
Version: 1.4
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 4/2/2020
Updated: 3/19/2024
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.0
CVSS v2
Risk Factor: Low
Base Score: 3.6
Temporal Score: 2.8
Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:P
CVSS Score Source: CVE-2020-9383
CVSS v3
Risk Factor: High
Base Score: 7.1
Temporal Score: 6.4
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:novell:suse_linux:kernel-debug, p-cpe:/a:novell:suse_linux:reiserfs-kmp-default-debuginfo, p-cpe:/a:novell:suse_linux:kernel-default-devel-debuginfo, p-cpe:/a:novell:suse_linux:kernel-default-base-debuginfo, p-cpe:/a:novell:suse_linux:kernel-vanilla-devel, p-cpe:/a:novell:suse_linux:kernel-vanilla-debugsource, p-cpe:/a:novell:suse_linux:kernel-vanilla-base-debuginfo, p-cpe:/a:novell:suse_linux:kernel-vanilla-debuginfo, p-cpe:/a:novell:suse_linux:kernel-default-man, p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debugsource, p-cpe:/a:novell:suse_linux:kernel-debug-devel, p-cpe:/a:novell:suse_linux:kernel-default-debuginfo, p-cpe:/a:novell:suse_linux:kernel-default-base, p-cpe:/a:novell:suse_linux:kernel-debug-devel-debuginfo, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-devel, p-cpe:/a:novell:suse_linux:kernel-zfcpdump-man, p-cpe:/a:novell:suse_linux:kselftests-kmp-default, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-base, p-cpe:/a:novell:suse_linux:kernel-vanilla-base, p-cpe:/a:novell:suse_linux:kernel-vanilla-devel-debuginfo, p-cpe:/a:novell:suse_linux:kernel-kvmsmall, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-livepatch-devel, p-cpe:/a:novell:suse_linux:kernel-vanilla-livepatch-devel, p-cpe:/a:novell:suse_linux:kernel-default-debugsource, p-cpe:/a:novell:suse_linux:kselftests-kmp-default-debuginfo, p-cpe:/a:novell:suse_linux:kernel-default-livepatch, p-cpe:/a:novell:suse_linux:kernel-default-devel, p-cpe:/a:novell:suse_linux:kernel-syms, p-cpe:/a:novell:suse_linux:kernel-debug-debuginfo, p-cpe:/a:novell:suse_linux:kernel-vanilla, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-debugsource, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-devel-debuginfo, cpe:/o:novell:suse_linux:15, p-cpe:/a:novell:suse_linux:kernel-debug-base, p-cpe:/a:novell:suse_linux:kernel-obs-qa, p-cpe:/a:novell:suse_linux:kernel-debug-livepatch-devel, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-base-debuginfo, p-cpe:/a:novell:suse_linux:kernel-obs-build-debugsource, p-cpe:/a:novell:suse_linux:kernel-debug-base-debuginfo, p-cpe:/a:novell:suse_linux:kernel-obs-build, p-cpe:/a:novell:suse_linux:kernel-debug-debugsource, p-cpe:/a:novell:suse_linux:kernel-default, p-cpe:/a:novell:suse_linux:kernel-zfcpdump-debuginfo, p-cpe:/a:novell:suse_linux:kernel-kvmsmall-debuginfo, p-cpe:/a:novell:suse_linux:reiserfs-kmp-default
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 3/31/2020
Vulnerability Publication Date: 12/12/2019
Reference Information
CVE: CVE-2019-19768, CVE-2020-8647, CVE-2020-8648, CVE-2020-8649, CVE-2020-9383